Skip to Main Content
When security-critical applications are considered to be integrated into the building automation domain, two requirements need to be fulfilled: providing security features at the network level and support for security mechanisms at the application level. This paper tackles the second goal using domain knowledge based on existing and related international application level standards. After the demands for secure applications and an underlying security policy are stated, a system model is derived that allows specifying security attributes for data points, function blocks, embedded applications, and, finally, distributed control applications. In conclusion, the applicability of the model is demonstrated for selected use cases.